Are you aware of BadRabbit Ransomeware?

What is RANSOMEWARE? How can you protect your personal and company data from attacks.

Ransomware is a type of malicious software from cryptovirology that threatens to publish the victim’s data or perpetually block access to it unless a ransom is paid. While some simple ransomware may lock the system in a way which is not difficult for a knowledgeable person to reverse, more advanced malware uses a technique called cryptoviral extortion, in which it encrypts the victim’s files, making them inaccessible, and demands a ransom payment to decrypt them.

BadRabbit ransomware campaign spreading globally

Key points

Ransomware called BadRabbit is affecting companies globally

BadRabbit ransomware is being delivered by a fraudulent Adobe Flash update

Analysis

On 24 October, media outlets reported that a ransomware campaign called BadRabbit was spreading globally. Ransomware is a type of malicious software (malware) that encrypts files on the machine and demands a payment to regain access to the files. The malware is delivered via compromised websites. If a user visits a compromised website, the user is prompted to install a fraudulent Adobe Flash update.

Executing the fraudulent update will cause the files on the machine to become encrypted, and a message will display on the screen demanding a payment.

The Cyber Intelligence Center (CIC) is continuing to analyze and monitor the BadRabbit ransomware and will provides updates as relevant.

Recommendations

If you receive Adobe Flash update message, do not enable the update. Immediately call an expert for Advice.